Vulnerabilities > CVE-2013-2260 - Insufficient Entropy vulnerability in Cryptocat Project Cryptocat
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
Cryptocat before 2.0.22: Cryptocat.random() Function Array Key has Entropy Weakness
Vulnerable Configurations
Common Weakness Enumeration (CWE)
Common Attack Pattern Enumeration and Classification (CAPEC)
References
- https://tobtu.com/decryptocat.php
- https://tobtu.com/decryptocat.php
- https://vuldb.com/?id.9435
- https://vuldb.com/?id.9435
- https://www.openwall.com/lists/oss-security/2013/07/10/15
- https://www.openwall.com/lists/oss-security/2013/07/10/15
- https://www.securityfocus.com/bid/61091/info
- https://www.securityfocus.com/bid/61091/info